All the vulnerabilites related to Drupal - Drupal core
cve-2020-13667
Vulnerability from cvelistv5
Published
2021-05-17 16:52
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Access bypass vulnerability in of Drupal Core Workspaces allows an attacker to access data without correct permissions. The Workspaces module doesn't sufficiently check access permissions when switching workspaces, leading to an access bypass vulnerability. An attacker might be able to see content before the site owner intends people to see the content. This vulnerability is mitigated by the fact that sites are only vulnerable if they have installed the experimental Workspaces module. This issue affects Drupal Core8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-008 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.398Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-008" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.8.10", "status": "affected", "version": "8.8.X", "versionType": "custom" }, { "lessThan": "8.9.6", "status": "affected", "version": "8.9.X", "versionType": "custom" }, { "lessThan": "9.0.6", "status": "affected", "version": "9.0.X", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Access bypass vulnerability in of Drupal Core Workspaces allows an attacker to access data without correct permissions. The Workspaces module doesn\u0027t sufficiently check access permissions when switching workspaces, leading to an access bypass vulnerability. An attacker might be able to see content before the site owner intends people to see the content. This vulnerability is mitigated by the fact that sites are only vulnerable if they have installed the experimental Workspaces module. This issue affects Drupal Core8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6." } ], "problemTypes": [ { "descriptions": [ { "description": " Access bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-05-17T16:52:34", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-008" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13667", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "8.8.X", "version_value": "8.8.10" }, { "version_affected": "\u003c", "version_name": "8.9.X", "version_value": "8.9.6" }, { "version_affected": "\u003c", "version_name": "9.0.X", "version_value": "9.0.6" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Access bypass vulnerability in of Drupal Core Workspaces allows an attacker to access data without correct permissions. The Workspaces module doesn\u0027t sufficiently check access permissions when switching workspaces, leading to an access bypass vulnerability. An attacker might be able to see content before the site owner intends people to see the content. This vulnerability is mitigated by the fact that sites are only vulnerable if they have installed the experimental Workspaces module. This issue affects Drupal Core8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": " Access bypass" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-008", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-008" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13667", "datePublished": "2021-05-17T16:52:34", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.398Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6377
Vulnerability from cvelistv5
Published
2017-03-16 14:00
Modified
2024-08-05 15:25
Severity ?
EPSS score ?
Summary
When adding a private file via the editor in Drupal 8.2.x before 8.2.7, the editor will not correctly check access for the file being attached, resulting in an access bypass.
References
▼ | URL | Tags |
---|---|---|
http://www.securitytracker.com/id/1038058 | vdb-entry, x_refsource_SECTRACK | |
https://www.drupal.org/SA-2017-001 | x_refsource_CONFIRM | |
http://www.securityfocus.com/bid/96919 | vdb-entry, x_refsource_BID |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:25:49.267Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/96919" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "8.2.x versions before 8.2.7" } ] } ], "datePublic": "2017-03-15T00:00:00", "descriptions": [ { "lang": "en", "value": "When adding a private file via the editor in Drupal 8.2.x before 8.2.7, the editor will not correctly check access for the file being attached, resulting in an access bypass." } ], "problemTypes": [ { "descriptions": [ { "description": "Access Bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-07-11T09:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/96919" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2017-6377", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_value": "8.2.x versions before 8.2.7" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "When adding a private file via the editor in Drupal 8.2.x before 8.2.7, the editor will not correctly check access for the file being attached, resulting in an access bypass." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access Bypass" } ] } ] }, "references": { "reference_data": [ { "name": "1038058", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038058" }, { "name": "https://www.drupal.org/SA-2017-001", "refsource": "CONFIRM", "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96919" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6377", "datePublished": "2017-03-16T14:00:00", "dateReserved": "2017-02-28T00:00:00", "dateUpdated": "2024-08-05T15:25:49.267Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6381
Vulnerability from cvelistv5
Published
2017-03-16 14:00
Modified
2024-08-05 15:25
Severity ?
EPSS score ?
Summary
A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren't vulnerable, you can remove the <siteroot>/vendor/phpunit directory from your production deployments
References
▼ | URL | Tags |
---|---|---|
http://www.securitytracker.com/id/1038058 | vdb-entry, x_refsource_SECTRACK | |
https://www.drupal.org/SA-2017-001 | x_refsource_CONFIRM | |
http://www.securityfocus.com/bid/96919 | vdb-entry, x_refsource_BID |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:25:49.286Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/96919" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "8.2.x versions before 8.2.7" } ] } ], "datePublic": "2017-03-15T00:00:00", "descriptions": [ { "lang": "en", "value": "A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren\u0027t normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren\u0027t vulnerable, you can remove the \u003csiteroot\u003e/vendor/phpunit directory from your production deployments" } ], "problemTypes": [ { "descriptions": [ { "description": "Remote code execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-07-11T09:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/96919" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2017-6381", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_value": "8.2.x versions before 8.2.7" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren\u0027t normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren\u0027t vulnerable, you can remove the \u003csiteroot\u003e/vendor/phpunit directory from your production deployments" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote code execution" } ] } ] }, "references": { "reference_data": [ { "name": "1038058", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038058" }, { "name": "https://www.drupal.org/SA-2017-001", "refsource": "CONFIRM", "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96919" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6381", "datePublished": "2017-03-16T14:00:00", "dateReserved": "2017-02-28T00:00:00", "dateUpdated": "2024-08-05T15:25:49.286Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-6341
Vulnerability from cvelistv5
Published
2019-03-26 18:04
Modified
2024-08-04 20:23
Severity ?
EPSS score ?
Summary
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2019-004 | x_refsource_CONFIRM | |
https://lists.debian.org/debian-lts-announce/2019/04/msg00003.html | mailing-list, x_refsource_MLIST | |
https://www.synology.com/security/advisory/Synology_SA_19_13 | x_refsource_CONFIRM | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNTLCBAN6T7WYR5C4TNEYQD65IIR3V4P/ | vendor-advisory, x_refsource_FEDORA | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4SVTVIJ33XCFQ6X6XTVMQM3NPLP2WFS/ | vendor-advisory, x_refsource_FEDORA | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P4KTET2PTSIS3ZZ4SGBRQEN6CCLV5SYX/ | vendor-advisory, x_refsource_FEDORA | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWHF4LALNBZCXMITWWVWKY3PNVYTM3N7/ | vendor-advisory, x_refsource_FEDORA |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T20:23:20.919Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2019-004" }, { "name": "[debian-lts-announce] 20190401 [SECURITY] [DLA 1746-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00003.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.synology.com/security/advisory/Synology_SA_19_13" }, { "name": "FEDORA-2019-79bd99f9a8", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNTLCBAN6T7WYR5C4TNEYQD65IIR3V4P/" }, { "name": "FEDORA-2019-2fbce03df3", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4SVTVIJ33XCFQ6X6XTVMQM3NPLP2WFS/" }, { "name": "FEDORA-2019-35589cfcb5", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P4KTET2PTSIS3ZZ4SGBRQEN6CCLV5SYX/" }, { "name": "FEDORA-2019-1d9be4b853", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWHF4LALNBZCXMITWWVWKY3PNVYTM3N7/" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal core", "vendor": "Drupal", "versions": [ { "lessThan": "7.65", "status": "affected", "version": "Drupal 7 ", "versionType": "custom" }, { "lessThan": "8.6.13", "status": "affected", "version": "Drupal 8.6", "versionType": "custom" }, { "lessThan": "8.5.14", "status": "affected", "version": "Drupal 8.5", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal 7 versions prior to 7.65; Drupal 8.6 versions prior to 8.6.13;Drupal 8.5 versions prior to 8.5.14. Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting (XSS) vulnerability." } ], "problemTypes": [ { "descriptions": [ { "description": "Cross Site Scripting", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-05-16T01:06:05", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2019-004" }, { "name": "[debian-lts-announce] 20190401 [SECURITY] [DLA 1746-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00003.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.synology.com/security/advisory/Synology_SA_19_13" }, { "name": "FEDORA-2019-79bd99f9a8", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNTLCBAN6T7WYR5C4TNEYQD65IIR3V4P/" }, { "name": "FEDORA-2019-2fbce03df3", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4SVTVIJ33XCFQ6X6XTVMQM3NPLP2WFS/" }, { "name": "FEDORA-2019-35589cfcb5", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P4KTET2PTSIS3ZZ4SGBRQEN6CCLV5SYX/" }, { "name": "FEDORA-2019-1d9be4b853", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWHF4LALNBZCXMITWWVWKY3PNVYTM3N7/" } ], "source": { "advisory": "SA-CORE-2019-004", "discovery": "UNKNOWN" }, "title": "Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004", "x_generator": { "engine": "Vulnogram 0.0.5" }, "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2019-6341", "STATE": "PUBLIC", "TITLE": "Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "Drupal 7 ", "version_value": "7.65" }, { "version_affected": "\u003c", "version_name": "Drupal 8.6", "version_value": "8.6.13" }, { "version_affected": "\u003c", "version_name": "Drupal 8.5", "version_value": "8.5.14" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal 7 versions prior to 7.65; Drupal 8.6 versions prior to 8.6.13;Drupal 8.5 versions prior to 8.5.14. Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting (XSS) vulnerability." } ] }, "generator": { "engine": "Vulnogram 0.0.5" }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Scripting" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2019-004", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2019-004" }, { "name": "[debian-lts-announce] 20190401 [SECURITY] [DLA 1746-1] drupal7 security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00003.html" }, { "name": "https://www.synology.com/security/advisory/Synology_SA_19_13", "refsource": "CONFIRM", "url": "https://www.synology.com/security/advisory/Synology_SA_19_13" }, { "name": "FEDORA-2019-79bd99f9a8", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QNTLCBAN6T7WYR5C4TNEYQD65IIR3V4P/" }, { "name": "FEDORA-2019-2fbce03df3", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y4SVTVIJ33XCFQ6X6XTVMQM3NPLP2WFS/" }, { "name": "FEDORA-2019-35589cfcb5", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/P4KTET2PTSIS3ZZ4SGBRQEN6CCLV5SYX/" }, { "name": "FEDORA-2019-1d9be4b853", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IWHF4LALNBZCXMITWWVWKY3PNVYTM3N7/" } ] }, "source": { "advisory": "SA-CORE-2019-004", "discovery": "UNKNOWN" } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2019-6341", "datePublished": "2019-03-26T18:04:37", "dateReserved": "2019-01-15T00:00:00", "dateUpdated": "2024-08-04T20:23:20.919Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6922
Vulnerability from cvelistv5
Published
2019-01-22 15:00
Modified
2024-09-16 19:04
Severity ?
EPSS score ?
Summary
Files uploaded by anonymous users into a private file system can be accessed by other anonymous users
References
▼ | URL | Tags |
---|---|---|
https://www.debian.org/security/2017/dsa-3897 | vendor-advisory, x_refsource_DEBIAN | |
http://www.securityfocus.com/bid/99219 | vdb-entry, x_refsource_BID | |
https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple | x_refsource_CONFIRM | |
http://www.securitytracker.com/id/1038781 | vdb-entry, x_refsource_SECTRACK |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:49:01.343Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "DSA-3897", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2017/dsa-3897" }, { "name": "99219", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/99219" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1038781" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.3.3", "status": "affected", "version": "Drupal 8", "versionType": "custom" }, { "lessThan": "7.55", "status": "affected", "version": "Drupal 7", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal core 8.x prior to 8.3.4 and Drupal core 7.x prior to 7.56; Private files that have been uploaded by an anonymous user but not permanently attached to content on the site should only be visible to the anonymous user that uploaded them, rather than all anonymous users. Drupal core did not previously provide this protection, allowing an access bypass vulnerability to occur. This issue is mitigated by the fact that in order to be affected, the site must allow anonymous users to upload files into a private file system." } ], "problemTypes": [ { "descriptions": [ { "description": "Access Bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-01-23T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "DSA-3897", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2017/dsa-3897" }, { "name": "99219", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/99219" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1038781" } ], "source": { "advisory": "SA-CORE-2017-003", "discovery": "UNKNOWN" }, "title": "Files uploaded by anonymous users into a private file system can be accessed by other anonymous users", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2017-6922", "STATE": "PUBLIC", "TITLE": "Files uploaded by anonymous users into a private file system can be accessed by other anonymous users" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "Drupal 8", "version_value": "8.3.3" }, { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "Drupal 7", "version_value": "7.55" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal core 8.x prior to 8.3.4 and Drupal core 7.x prior to 7.56; Private files that have been uploaded by an anonymous user but not permanently attached to content on the site should only be visible to the anonymous user that uploaded them, rather than all anonymous users. Drupal core did not previously provide this protection, allowing an access bypass vulnerability to occur. This issue is mitigated by the fact that in order to be affected, the site must allow anonymous users to upload files into a private file system." } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access Bypass" } ] } ] }, "references": { "reference_data": [ { "name": "DSA-3897", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2017/dsa-3897" }, { "name": "99219", "refsource": "BID", "url": "http://www.securityfocus.com/bid/99219" }, { "name": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple", "refsource": "CONFIRM", "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038781" } ] }, "solution": [], "source": { "advisory": "SA-CORE-2017-003", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6922", "datePublished": "2019-01-22T15:00:00Z", "dateReserved": "2017-03-16T00:00:00", "dateUpdated": "2024-09-16T19:04:17.971Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-6342
Vulnerability from cvelistv5
Published
2020-05-28 20:59
Modified
2024-08-04 20:23
Severity ?
EPSS score ?
Summary
Drupal core - Critical - Access bypass - SA-CORE-2019-008
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2019-008 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T20:23:20.932Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2019-008" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "Drupal 8 8.7.4" } ] } ], "descriptions": [ { "lang": "en", "value": "An access bypass vulnerability exists when the experimental Workspaces module in Drupal 8 core is enabled. This can be mitigated by disabling the Workspaces module. It does not affect any release other than Drupal 8.7.4." } ], "problemTypes": [ { "descriptions": [ { "description": "Access Bypasss", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2020-05-28T20:59:46", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2019-008" } ], "source": { "advisory": "SA-CORE-2019-008", "discovery": "UNKNOWN" }, "title": "Drupal core - Critical - Access bypass - SA-CORE-2019-008", "x_generator": { "engine": "Vulnogram 0.0.9" }, "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2019-6342", "STATE": "PUBLIC", "TITLE": "Drupal core - Critical - Access bypass - SA-CORE-2019-008" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "=", "version_name": "Drupal 8", "version_value": "8.7.4" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "An access bypass vulnerability exists when the experimental Workspaces module in Drupal 8 core is enabled. This can be mitigated by disabling the Workspaces module. It does not affect any release other than Drupal 8.7.4." } ] }, "generator": { "engine": "Vulnogram 0.0.9" }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access Bypasss" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2019-008", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2019-008" } ] }, "source": { "advisory": "SA-CORE-2019-008", "discovery": "UNKNOWN" } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2019-6342", "datePublished": "2020-05-28T20:59:46", "dateReserved": "2019-01-15T00:00:00", "dateUpdated": "2024-08-04T20:23:20.932Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13662
Vulnerability from cvelistv5
Published
2021-05-05 14:32
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-003 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.464Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-003" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThanOrEqual": "7.70", "status": "affected", "version": "7", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions." } ], "problemTypes": [ { "descriptions": [ { "description": "Open Redirect", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-05-05T14:32:03", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-003" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13662", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c=", "version_name": "7", "version_value": "7.70" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Open Redirect" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-003", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-003" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13662", "datePublished": "2021-05-05T14:32:03", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.464Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2024-45440
Vulnerability from cvelistv5
Published
2024-08-29 00:00
Modified
2024-10-28 20:20
Severity ?
EPSS score ?
Summary
core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) if the value of hash_salt is file_get_contents of a file that does not exist.
References
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "containers": { "adp": [ { "affected": [ { "cpes": [ "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "drupal", "vendor": "drupal", "versions": [ { "lessThan": "10.2.0", "status": "affected", "version": "0", "versionType": "custom" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1" } }, { "other": { "content": { "id": "CVE-2024-45440", "options": [ { "Exploitation": "none" }, { "Automatable": "no" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "timestamp": "2024-08-29T13:18:23.343049Z", "version": "2.0.3" }, "type": "ssvc" } } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-209", "description": "CWE-209 Generation of Error Message Containing Sensitive Information", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-10-28T20:20:18.538Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "product": "Drupal core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "v11.x-dev" } ] } ], "descriptions": [ { "lang": "en", "value": "core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) if the value of hash_salt is file_get_contents of a file that does not exist." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2024-09-12T15:27:33.952572", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "url": "https://www.drupal.org/project/drupal/issues/3457781" }, { "url": "https://senscybersecurity.nl/CVE-2024-45440-Explained/" } ] } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2024-45440", "datePublished": "2024-08-29T00:00:00", "dateReserved": "2024-08-29T00:00:00", "dateUpdated": "2024-10-28T20:20:18.538Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6379
Vulnerability from cvelistv5
Published
2017-03-16 14:00
Modified
2024-08-05 15:25
Severity ?
EPSS score ?
Summary
Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID.
References
▼ | URL | Tags |
---|---|---|
http://www.securitytracker.com/id/1038058 | vdb-entry, x_refsource_SECTRACK | |
https://www.drupal.org/SA-2017-001 | x_refsource_CONFIRM | |
http://www.securityfocus.com/bid/96919 | vdb-entry, x_refsource_BID |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:25:49.262Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/96919" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "8.2.x versions before 8.2.7" } ] } ], "datePublic": "2017-03-15T00:00:00", "descriptions": [ { "lang": "en", "value": "Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID." } ], "problemTypes": [ { "descriptions": [ { "description": "Cross Site Request Forgery", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-07-11T09:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "1038058", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1038058" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/96919" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2017-6379", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_value": "8.2.x versions before 8.2.7" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Request Forgery" } ] } ] }, "references": { "reference_data": [ { "name": "1038058", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038058" }, { "name": "https://www.drupal.org/SA-2017-001", "refsource": "CONFIRM", "url": "https://www.drupal.org/SA-2017-001" }, { "name": "96919", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96919" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6379", "datePublished": "2017-03-16T14:00:00", "dateReserved": "2017-02-28T00:00:00", "dateUpdated": "2024-08-05T15:25:49.262Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6924
Vulnerability from cvelistv5
Published
2019-01-15 20:00
Modified
2024-09-16 16:57
Severity ?
EPSS score ?
Summary
REST API can bypass comment approval - Access Bypass - Moderately Critical
References
▼ | URL | Tags |
---|---|---|
http://www.securityfocus.com/bid/100368 | vdb-entry, x_refsource_BID | |
https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple | x_refsource_CONFIRM | |
http://www.securitytracker.com/id/1039200 | vdb-entry, x_refsource_SECTRACK |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:49:02.244Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "100368", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/100368" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1039200" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.3.7", "status": "affected", "version": "Drupal 8", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal 8 prior to 8.3.7; When using the REST API, users without the correct permission can post comments via REST that are approved even if the user does not have permission to post approved comments. This issue only affects sites that have the RESTful Web Services (rest) module enabled, the comment entity REST resource enabled, and where an attacker can access a user account on the site with permissions to post comments, or where anonymous users can post comments." } ], "problemTypes": [ { "descriptions": [ { "description": "Access Bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-01-16T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "100368", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/100368" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1039200" } ], "source": { "advisory": "SA-CORE-2017-004", "discovery": "UNKNOWN" }, "title": "REST API can bypass comment approval - Access Bypass - Moderately Critical", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2017-6924", "STATE": "PUBLIC", "TITLE": "REST API can bypass comment approval - Access Bypass - Moderately Critical" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "Drupal 8", "version_value": "8.3.7" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal 8 prior to 8.3.7; When using the REST API, users without the correct permission can post comments via REST that are approved even if the user does not have permission to post approved comments. This issue only affects sites that have the RESTful Web Services (rest) module enabled, the comment entity REST resource enabled, and where an attacker can access a user account on the site with permissions to post comments, or where anonymous users can post comments." } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access Bypass" } ] } ] }, "references": { "reference_data": [ { "name": "100368", "refsource": "BID", "url": "http://www.securityfocus.com/bid/100368" }, { "name": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple", "refsource": "CONFIRM", "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1039200" } ] }, "solution": [], "source": { "advisory": "SA-CORE-2017-004", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6924", "datePublished": "2019-01-15T20:00:00Z", "dateReserved": "2017-03-16T00:00:00", "dateUpdated": "2024-09-16T16:57:56.911Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13664
Vulnerability from cvelistv5
Published
2021-05-05 14:56
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Arbitrary PHP code execution vulnerability in Drupal Core under certain circumstances. An attacker could trick an administrator into visiting a malicious site that could result in creating a carefully named directory on the file system. With this directory in place, an attacker could attempt to brute force a remote code execution vulnerability. Windows servers are most likely to be affected. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.1 versions prior to 9.0.1.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-005 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.209Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-005" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.8.8", "status": "affected", "version": "8.8.x", "versionType": "custom" }, { "lessThan": "8.9.1", "status": "affected", "version": "8.9.x", "versionType": "custom" }, { "lessThan": "9.0.1", "status": "affected", "version": "9.0.1", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Arbitrary PHP code execution vulnerability in Drupal Core under certain circumstances. An attacker could trick an administrator into visiting a malicious site that could result in creating a carefully named directory on the file system. With this directory in place, an attacker could attempt to brute force a remote code execution vulnerability. Windows servers are most likely to be affected. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.1 versions prior to 9.0.1." } ], "problemTypes": [ { "descriptions": [ { "description": "Arbitrary PHP code execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-05-05T14:56:39", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-005" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13664", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "8.8.x", "version_value": "8.8.8" }, { "version_affected": "\u003c", "version_name": "8.9.x", "version_value": "8.9.1" }, { "version_affected": "\u003c", "version_name": "9.0.1", "version_value": "9.0.1" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Arbitrary PHP code execution vulnerability in Drupal Core under certain circumstances. An attacker could trick an administrator into visiting a malicious site that could result in creating a carefully named directory on the file system. With this directory in place, an attacker could attempt to brute force a remote code execution vulnerability. Windows servers are most likely to be affected. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.1 versions prior to 9.0.1." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Arbitrary PHP code execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-005", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-005" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13664", "datePublished": "2021-05-05T14:56:39", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.209Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6921
Vulnerability from cvelistv5
Published
2019-01-15 22:00
Modified
2024-09-16 19:47
Severity ?
EPSS score ?
Summary
File REST resource does not properly validate
References
▼ | URL | Tags |
---|---|---|
http://www.securityfocus.com/bid/99222 | vdb-entry, x_refsource_BID | |
https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple | x_refsource_CONFIRM | |
http://www.securitytracker.com/id/1038781 | vdb-entry, x_refsource_SECTRACK |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:49:01.335Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "99222", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/99222" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1038781" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.3.4", "status": "affected", "version": "Drupal 8", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal 8 prior to 8.3.4; The file REST resource does not properly validate some fields when manipulating files. A site is only affected by this if the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests, and an attacker can get or register a user account on the site with permissions to upload files and to modify the file resource." } ], "problemTypes": [ { "descriptions": [ { "description": "Access Bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-01-16T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "99222", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/99222" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1038781" } ], "source": { "advisory": "SA-CORE-2017-003", "discovery": "UNKNOWN" }, "title": "File REST resource does not properly validate", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2017-6921", "STATE": "PUBLIC", "TITLE": "File REST resource does not properly validate" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "Drupal 8", "version_value": "8.3.4" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal 8 prior to 8.3.4; The file REST resource does not properly validate some fields when manipulating files. A site is only affected by this if the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests, and an attacker can get or register a user account on the site with permissions to upload files and to modify the file resource." } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access Bypass" } ] } ] }, "references": { "reference_data": [ { "name": "99222", "refsource": "BID", "url": "http://www.securityfocus.com/bid/99222" }, { "name": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple", "refsource": "CONFIRM", "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple" }, { "name": "1038781", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1038781" } ] }, "solution": [], "source": { "advisory": "SA-CORE-2017-003", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6921", "datePublished": "2019-01-15T22:00:00Z", "dateReserved": "2017-03-16T00:00:00", "dateUpdated": "2024-09-16T19:47:08.043Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13688
Vulnerability from cvelistv5
Published
2021-06-11 15:08
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Cross-site scripting vulnerability in l Drupal Core allows an attacker could leverage the way that HTML is rendered for affected forms in order to exploit the vulnerability. This issue affects: Drupal Core 8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-009 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.561Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-009" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.8.10", "status": "affected", "version": "8.8.X", "versionType": "custom" }, { "lessThan": "8.9.6", "status": "affected", "version": "8.9.X", "versionType": "custom" }, { "lessThan": "9.0.6", "status": "affected", "version": "9.0.X", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Cross-site scripting vulnerability in l Drupal Core allows an attacker could leverage the way that HTML is rendered for affected forms in order to exploit the vulnerability. This issue affects: Drupal Core 8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6." } ], "problemTypes": [ { "descriptions": [ { "description": "Cross-site scripting", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-06-11T15:08:56", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-009" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13688", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "8.8.X", "version_value": "8.8.10" }, { "version_affected": "\u003c", "version_name": "8.9.X", "version_value": "8.9.6" }, { "version_affected": "\u003c", "version_name": "9.0.X", "version_value": "9.0.6" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cross-site scripting vulnerability in l Drupal Core allows an attacker could leverage the way that HTML is rendered for affected forms in order to exploit the vulnerability. This issue affects: Drupal Core 8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross-site scripting" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-009", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-009" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13688", "datePublished": "2021-06-11T15:08:56", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.561Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2017-6923
Vulnerability from cvelistv5
Published
2019-01-22 16:00
Modified
2024-09-16 17:42
Severity ?
EPSS score ?
Summary
Access bypass in Drupal 8 views
References
▼ | URL | Tags |
---|---|---|
http://www.securityfocus.com/bid/100368 | vdb-entry, x_refsource_BID | |
https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple | x_refsource_CONFIRM | |
http://www.securitytracker.com/id/1039200 | vdb-entry, x_refsource_SECTRACK |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T15:49:02.709Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "100368", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/100368" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1039200" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal core", "vendor": "Drupal", "versions": [ { "lessThan": "8.3.7", "status": "affected", "version": "8.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal 8.x prior to 8.3.7 When creating a view, you can optionally use Ajax to update the displayed data via filter parameters. The views subsystem/module did not restrict access to the Ajax endpoint to only views configured to use Ajax. This is mitigated if you have access restrictions on the view. It is best practice to always include some form of access restrictions on all views, even if you are using another module to display them." } ], "problemTypes": [ { "descriptions": [ { "description": "Access bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-01-23T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "100368", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/100368" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1039200" } ], "source": { "discovery": "UNKNOWN" }, "title": "Access bypass in Drupal 8 views", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2017-6923", "STATE": "PUBLIC", "TITLE": "Access bypass in Drupal 8 views" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "8.x", "version_value": "8.3.7" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal 8.x prior to 8.3.7 When creating a view, you can optionally use Ajax to update the displayed data via filter parameters. The views subsystem/module did not restrict access to the Ajax endpoint to only views configured to use Ajax. This is mitigated if you have access restrictions on the view. It is best practice to always include some form of access restrictions on all views, even if you are using another module to display them." } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access bypass" } ] } ] }, "references": { "reference_data": [ { "name": "100368", "refsource": "BID", "url": "http://www.securityfocus.com/bid/100368" }, { "name": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple", "refsource": "CONFIRM", "url": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-08-16/drupal-core-multiple" }, { "name": "1039200", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1039200" } ] }, "solution": [], "source": { "advisory": "", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2017-6923", "datePublished": "2019-01-22T16:00:00Z", "dateReserved": "2017-03-16T00:00:00", "dateUpdated": "2024-09-16T17:42:46.607Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-6338
Vulnerability from cvelistv5
Published
2019-01-22 15:00
Modified
2024-09-16 18:38
Severity ?
EPSS score ?
Summary
third-party PEAR Archive_Tar library updates
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2019-001 | x_refsource_CONFIRM | |
https://www.debian.org/security/2019/dsa-4370 | vendor-advisory, x_refsource_DEBIAN | |
https://lists.debian.org/debian-lts-announce/2019/02/msg00032.html | mailing-list, x_refsource_MLIST | |
http://www.securityfocus.com/bid/106706 | vdb-entry, x_refsource_BID |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T20:16:24.844Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2019-001" }, { "name": "DSA-4370", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2019/dsa-4370" }, { "name": "[debian-lts-announce] 20190220 [SECURITY] [DLA 1685-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00032.html" }, { "name": "106706", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/106706" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal core", "vendor": "Drupal", "versions": [ { "lessThan": "7.62", "status": "affected", "version": "7.x", "versionType": "custom" }, { "lessThan": "8.6.6.", "status": "affected", "version": "8.6.x", "versionType": "custom" }, { "lessThan": "8.5.9", "status": "affected", "version": "8.5.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core uses the third-party PEAR Archive_Tar library. This library has released a security update which impacts some Drupal configurations. Refer to CVE-2018-1000888 for details" } ], "problemTypes": [ { "descriptions": [ { "description": "3rd party library weekness", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-02-20T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2019-001" }, { "name": "DSA-4370", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2019/dsa-4370" }, { "name": "[debian-lts-announce] 20190220 [SECURITY] [DLA 1685-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00032.html" }, { "name": "106706", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/106706" } ], "source": { "discovery": "UNKNOWN" }, "title": "third-party PEAR Archive_Tar library updates", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2019-6338", "STATE": "PUBLIC", "TITLE": "third-party PEAR Archive_Tar library updates" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "7.x", "version_value": "7.62" }, { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "8.6.x", "version_value": "8.6.6." }, { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "8.5.x", "version_value": "8.5.9" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core uses the third-party PEAR Archive_Tar library. This library has released a security update which impacts some Drupal configurations. Refer to CVE-2018-1000888 for details" } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "3rd party library weekness" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2019-001", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2019-001" }, { "name": "DSA-4370", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4370" }, { "name": "[debian-lts-announce] 20190220 [SECURITY] [DLA 1685-1] drupal7 security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00032.html" }, { "name": "106706", "refsource": "BID", "url": "http://www.securityfocus.com/bid/106706" } ] }, "solution": [], "source": { "advisory": "", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2019-6338", "datePublished": "2019-01-22T15:00:00Z", "dateReserved": "2019-01-15T00:00:00", "dateUpdated": "2024-09-16T18:38:30.675Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-6339
Vulnerability from cvelistv5
Published
2019-01-22 15:00
Modified
2024-09-16 20:06
Severity ?
EPSS score ?
Summary
PHAR stream wrapper Arbitrary PHP code execution
References
▼ | URL | Tags |
---|---|---|
https://www.debian.org/security/2019/dsa-4370 | vendor-advisory, x_refsource_DEBIAN | |
https://www.drupal.org/sa-core-2019-002 | x_refsource_CONFIRM | |
https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html | mailing-list, x_refsource_MLIST |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T20:16:24.760Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "DSA-4370", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2019/dsa-4370" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2019-002" }, { "name": "[debian-lts-announce] 20190202 [SECURITY] [DLA 1659-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal core", "vendor": "Drupal", "versions": [ { "lessThan": "7.62", "status": "affected", "version": "7.x", "versionType": "custom" }, { "lessThan": "8.6.6.", "status": "affected", "version": "8.6.x", "versionType": "custom" }, { "lessThan": "8.5.9", "status": "affected", "version": "8.5.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; A remote code execution vulnerability exists in PHP\u0027s built-in phar stream wrapper when performing file operations on an untrusted phar:// URI. Some Drupal code (core, contrib, and custom) may be performing file operations on insufficiently validated user input, thereby being exposed to this vulnerability. This vulnerability is mitigated by the fact that such code paths typically require access to an administrative permission or an atypical configuration." } ], "problemTypes": [ { "descriptions": [ { "description": "Remote Code Execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-02-02T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "name": "DSA-4370", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2019/dsa-4370" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2019-002" }, { "name": "[debian-lts-announce] 20190202 [SECURITY] [DLA 1659-1] drupal7 security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html" } ], "source": { "discovery": "UNKNOWN" }, "title": "PHAR stream wrapper Arbitrary PHP code execution", "x_legacyV4Record": { "CVE_data_meta": { "AKA": "", "ASSIGNER": "security@drupal.org", "DATE_PUBLIC": "", "ID": "CVE-2019-6339", "STATE": "PUBLIC", "TITLE": "PHAR stream wrapper Arbitrary PHP code execution" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal core", "version": { "version_data": [ { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "7.x", "version_value": "7.62" }, { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "8.6.x", "version_value": "8.6.6." }, { "affected": "\u003c", "platform": "", "version_affected": "\u003c", "version_name": "8.5.x", "version_value": "8.5.9" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "configuration": [], "credit": [], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; A remote code execution vulnerability exists in PHP\u0027s built-in phar stream wrapper when performing file operations on an untrusted phar:// URI. Some Drupal code (core, contrib, and custom) may be performing file operations on insufficiently validated user input, thereby being exposed to this vulnerability. This vulnerability is mitigated by the fact that such code paths typically require access to an administrative permission or an atypical configuration." } ] }, "exploit": [], "impact": { "cvss": { "attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 0, "baseSeverity": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N", "version": "3.0" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote Code Execution" } ] } ] }, "references": { "reference_data": [ { "name": "DSA-4370", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2019/dsa-4370" }, { "name": "https://www.drupal.org/sa-core-2019-002", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2019-002" }, { "name": "[debian-lts-announce] 20190202 [SECURITY] [DLA 1659-1] drupal7 security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html" } ] }, "solution": [], "source": { "advisory": "", "defect": [], "discovery": "UNKNOWN" }, "work_around": [] } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2019-6339", "datePublished": "2019-01-22T15:00:00Z", "dateReserved": "2019-01-15T00:00:00", "dateUpdated": "2024-09-16T20:06:38.516Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2019-6340
Vulnerability from cvelistv5
Published
2019-02-21 21:00
Modified
2024-08-04 20:16
Severity ?
EPSS score ?
Summary
Drupal core - Highly critical - Remote Code Execution
References
▼ | URL | Tags |
---|---|---|
https://www.synology.com/security/advisory/Synology_SA_19_09 | x_refsource_CONFIRM | |
https://www.exploit-db.com/exploits/46452/ | exploit, x_refsource_EXPLOIT-DB | |
https://www.drupal.org/sa-core-2019-003 | x_refsource_CONFIRM | |
https://www.exploit-db.com/exploits/46510/ | exploit, x_refsource_EXPLOIT-DB | |
http://www.securityfocus.com/bid/107106 | vdb-entry, x_refsource_BID | |
https://www.exploit-db.com/exploits/46459/ | exploit, x_refsource_EXPLOIT-DB |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T20:16:24.806Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.synology.com/security/advisory/Synology_SA_19_09" }, { "name": "46452", "tags": [ "exploit", "x_refsource_EXPLOIT-DB", "x_transferred" ], "url": "https://www.exploit-db.com/exploits/46452/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2019-003" }, { "name": "46510", "tags": [ "exploit", "x_refsource_EXPLOIT-DB", "x_transferred" ], "url": "https://www.exploit-db.com/exploits/46510/" }, { "name": "107106", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/107106" }, { "name": "46459", "tags": [ "exploit", "x_refsource_EXPLOIT-DB", "x_transferred" ], "url": "https://www.exploit-db.com/exploits/46459/" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.5.11", "status": "affected", "version": "8.5", "versionType": "custom" }, { "lessThan": "8.6.10", "status": "affected", "version": "8.6", "versionType": "custom" } ] } ], "datePublic": "2019-02-21T00:00:00", "descriptions": [ { "lang": "en", "value": "Some field types do not properly sanitize data from non-form sources in Drupal 8.5.x before 8.5.11 and Drupal 8.6.x before 8.6.10. This can lead to arbitrary PHP code execution in some cases. A site is only affected by this if one of the following conditions is met: The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows PATCH or POST requests, or the site has another web services module enabled, like JSON:API in Drupal 8, or Services or RESTful Web Services in Drupal 7. (Note: The Drupal 7 Services module itself does not require an update at this time, but you should apply other contributed updates associated with this advisory if Services is in use.)" } ], "problemTypes": [ { "descriptions": [ { "description": "Remote code execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-03-08T10:57:01", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.synology.com/security/advisory/Synology_SA_19_09" }, { "name": "46452", "tags": [ "exploit", "x_refsource_EXPLOIT-DB" ], "url": "https://www.exploit-db.com/exploits/46452/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2019-003" }, { "name": "46510", "tags": [ "exploit", "x_refsource_EXPLOIT-DB" ], "url": "https://www.exploit-db.com/exploits/46510/" }, { "name": "107106", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/107106" }, { "name": "46459", "tags": [ "exploit", "x_refsource_EXPLOIT-DB" ], "url": "https://www.exploit-db.com/exploits/46459/" } ], "source": { "advisory": "SA-CORE-2019-003", "discovery": "UNKNOWN" }, "title": "Drupal core - Highly critical - Remote Code Execution", "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2019-6340", "STATE": "PUBLIC", "TITLE": "Drupal core - Highly critical - Remote Code Execution" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "affected": "\u003c", "version_affected": "\u003c", "version_name": "8.5", "version_value": "8.5.11" }, { "affected": "\u003c", "version_affected": "\u003c", "version_name": "8.6", "version_value": "8.6.10" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Some field types do not properly sanitize data from non-form sources in Drupal 8.5.x before 8.5.11 and Drupal 8.6.x before 8.6.10. This can lead to arbitrary PHP code execution in some cases. A site is only affected by this if one of the following conditions is met: The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows PATCH or POST requests, or the site has another web services module enabled, like JSON:API in Drupal 8, or Services or RESTful Web Services in Drupal 7. (Note: The Drupal 7 Services module itself does not require an update at this time, but you should apply other contributed updates associated with this advisory if Services is in use.)" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote code execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.synology.com/security/advisory/Synology_SA_19_09", "refsource": "CONFIRM", "url": "https://www.synology.com/security/advisory/Synology_SA_19_09" }, { "name": "46452", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/46452/" }, { "name": "https://www.drupal.org/sa-core-2019-003", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2019-003" }, { "name": "46510", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/46510/" }, { "name": "107106", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107106" }, { "name": "46459", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/46459/" } ] }, "source": { "advisory": "SA-CORE-2019-003", "discovery": "UNKNOWN" } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2019-6340", "datePublished": "2019-02-21T21:00:00", "dateReserved": "2019-01-15T00:00:00", "dateUpdated": "2024-08-04T20:16:24.806Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13666
Vulnerability from cvelistv5
Published
2021-05-05 13:50
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Cross-site scripting vulnerability in Drupal Core. Drupal AJAX API does not disable JSONP by default, allowing for an XSS attack. This issue affects: Drupal Drupal Core 7.x versions prior to 7.73; 8.8.x versions prior to 8.8.10; 8.9.x versions prior to 8.9.6; 9.0.x versions prior to 9.0.6.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-007 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.445Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-007" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "7.73", "status": "affected", "version": "7.x", "versionType": "custom" }, { "lessThan": "8.8.10", "status": "affected", "version": "8.8.x", "versionType": "custom" }, { "lessThan": "8.9.6", "status": "affected", "version": "8.9.x", "versionType": "custom" }, { "lessThan": "9.0.6", "status": "affected", "version": "9.0.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Cross-site scripting vulnerability in Drupal Core. Drupal AJAX API does not disable JSONP by default, allowing for an XSS attack. This issue affects: Drupal Drupal Core 7.x versions prior to 7.73; 8.8.x versions prior to 8.8.10; 8.9.x versions prior to 8.9.6; 9.0.x versions prior to 9.0.6." } ], "problemTypes": [ { "descriptions": [ { "description": "Cross-site scripting", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-05-05T13:50:13", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-007" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13666", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.x", "version_value": "7.73" }, { "version_affected": "\u003c", "version_name": "8.8.x", "version_value": "8.8.10" }, { "version_affected": "\u003c", "version_name": "8.9.x", "version_value": "8.9.6" }, { "version_affected": "\u003c", "version_name": "9.0.x", "version_value": "9.0.6" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cross-site scripting vulnerability in Drupal Core. Drupal AJAX API does not disable JSONP by default, allowing for an XSS attack. This issue affects: Drupal Drupal Core 7.x versions prior to 7.73; 8.8.x versions prior to 8.8.10; 8.9.x versions prior to 8.9.6; 9.0.x versions prior to 9.0.6." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross-site scripting" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-007", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-007" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13666", "datePublished": "2021-05-05T13:50:13", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.445Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13665
Vulnerability from cvelistv5
Published
2021-05-05 14:14
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Access bypass vulnerability in Drupal Core allows JSON:API when JSON:API is in read/write mode. Only sites that have the read_only set to FALSE under jsonapi.settings config are vulnerable. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.x versions prior to 9.0.1.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-006 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.379Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-006" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "8.8.8", "status": "affected", "version": "8.8.x", "versionType": "custom" }, { "lessThan": "8.9.1", "status": "affected", "version": "8.9.x", "versionType": "custom" }, { "lessThan": "9.0.1", "status": "affected", "version": "9.0.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Access bypass vulnerability in Drupal Core allows JSON:API when JSON:API is in read/write mode. Only sites that have the read_only set to FALSE under jsonapi.settings config are vulnerable. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.x versions prior to 9.0.1." } ], "problemTypes": [ { "descriptions": [ { "description": "Access bypass", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-05-05T14:14:09", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-006" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13665", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "8.8.x", "version_value": "8.8.8" }, { "version_affected": "\u003c", "version_name": "8.9.x", "version_value": "8.9.1" }, { "version_affected": "\u003c", "version_name": "9.0.x", "version_value": "9.0.1" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Access bypass vulnerability in Drupal Core allows JSON:API when JSON:API is in read/write mode. Only sites that have the read_only set to FALSE under jsonapi.settings config are vulnerable. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions prior to 8.9.1; 9.0.x versions prior to 9.0.1." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Access bypass" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-006", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-006" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13665", "datePublished": "2021-05-05T14:14:09", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.379Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13663
Vulnerability from cvelistv5
Published
2021-06-11 15:07
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-004 | x_refsource_CONFIRM |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.134Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-004" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "lessThan": "7.72", "status": "affected", "version": "7.x", "versionType": "custom" }, { "lessThan": "8.8.8", "status": "affected", "version": "8.8.x", "versionType": "custom" }, { "lessThan": "8.9.1", "status": "affected", "version": "8.9.x", "versionType": "custom" }, { "lessThan": "9.0.1", "status": "affected", "version": "9.0.x", "versionType": "custom" } ] } ], "descriptions": [ { "lang": "en", "value": "Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities." } ], "problemTypes": [ { "descriptions": [ { "description": "Cross Site Request Forgery", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-06-11T15:07:25", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-004" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13663", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.x", "version_value": "7.72" }, { "version_affected": "\u003c", "version_name": "8.8.x", "version_value": "8.8.8" }, { "version_affected": "\u003c", "version_name": "8.9.x", "version_value": "8.9.1" }, { "version_affected": "\u003c", "version_name": "9.0.x", "version_value": "9.0.1" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Request Forgery" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-004", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-004" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13663", "datePublished": "2021-06-11T15:07:25", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.134Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2020-13671
Vulnerability from cvelistv5
Published
2020-11-20 15:40
Modified
2024-08-04 12:25
Severity ?
EPSS score ?
Summary
Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting configurations. This issue affects: Drupal Drupal Core 9.0 versions prior to 9.0.8, 8.9 versions prior to 8.9.9, 8.8 versions prior to 8.8.11, and 7 versions prior to 7.74.
References
▼ | URL | Tags |
---|---|---|
https://www.drupal.org/sa-core-2020-012 | x_refsource_CONFIRM | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWM4CTMEGAC4I2CHYNJVSROY4CVXVEUT/ | vendor-advisory, x_refsource_FEDORA | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5KSFM672XW3X6BR7TVKRD63SLZGKK437/ | vendor-advisory, x_refsource_FEDORA |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal Core |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T12:25:16.218Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://www.drupal.org/sa-core-2020-012" }, { "name": "FEDORA-2020-6f1079934c", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWM4CTMEGAC4I2CHYNJVSROY4CVXVEUT/" }, { "name": "FEDORA-2020-d50d74d6f2", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5KSFM672XW3X6BR7TVKRD63SLZGKK437/" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Drupal Core", "vendor": "Drupal", "versions": [ { "status": "affected", "version": "9.0 versions prior to 9.0.8" }, { "status": "affected", "version": "8.9 versions prior to 8.9.9" }, { "status": "affected", "version": "8.8 versions prior to 8.8.11" }, { "status": "affected", "version": "7 versions prior to 7.74" } ] } ], "descriptions": [ { "lang": "en", "value": "Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting configurations. This issue affects: Drupal Drupal Core 9.0 versions prior to 9.0.8, 8.9 versions prior to 8.9.9, 8.8 versions prior to 8.8.11, and 7 versions prior to 7.74." } ], "problemTypes": [ { "descriptions": [ { "description": "Remote code execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2020-12-15T03:06:07", "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "shortName": "drupal" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "https://www.drupal.org/sa-core-2020-012" }, { "name": "FEDORA-2020-6f1079934c", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWM4CTMEGAC4I2CHYNJVSROY4CVXVEUT/" }, { "name": "FEDORA-2020-d50d74d6f2", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5KSFM672XW3X6BR7TVKRD63SLZGKK437/" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@drupal.org", "ID": "CVE-2020-13671", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Drupal Core", "version": { "version_data": [ { "version_value": "9.0 versions prior to 9.0.8" }, { "version_value": "8.9 versions prior to 8.9.9" }, { "version_value": "8.8 versions prior to 8.8.11" }, { "version_value": "7 versions prior to 7.74" } ] } } ] }, "vendor_name": "Drupal" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting configurations. This issue affects: Drupal Drupal Core 9.0 versions prior to 9.0.8, 8.9 versions prior to 8.9.9, 8.8 versions prior to 8.8.11, and 7 versions prior to 7.74." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote code execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://www.drupal.org/sa-core-2020-012", "refsource": "CONFIRM", "url": "https://www.drupal.org/sa-core-2020-012" }, { "name": "FEDORA-2020-6f1079934c", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KWM4CTMEGAC4I2CHYNJVSROY4CVXVEUT/" }, { "name": "FEDORA-2020-d50d74d6f2", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5KSFM672XW3X6BR7TVKRD63SLZGKK437/" } ] } } } }, "cveMetadata": { "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387", "assignerShortName": "drupal", "cveId": "CVE-2020-13671", "datePublished": "2020-11-20T15:40:39", "dateReserved": "2020-05-28T00:00:00", "dateUpdated": "2024-08-04T12:25:16.218Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
jvndb-2012-000045
Vulnerability from jvndb
Published
2012-05-17 13:55
Modified
2012-05-17 13:55
Summary
Drupal Form API fails to validate the redirect URL
Details
Drupal's Form API fails to validate the redirect URL, which may lead to unintended information disclosure.
Drupal is a content management system (CMS). Drupal's Form API fails to validate the redirect URL, which may lead to unintended information disclosure.
Katsuhiko Nakanishi from NEC Nexsolutions, Ltd. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
▼ | Type | URL |
---|---|---|
JVN | https://jvn.jp/en/jp/JVN45898075/index.html | |
CVE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1589 | |
NVD | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1589 | |
Improper Input Validation(CWE-20) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
▼ | Vendor | Product |
---|---|---|
Drupal | Drupal core |
{ "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000045.html", "dc:date": "2012-05-17T13:55+09:00", "dcterms:issued": "2012-05-17T13:55+09:00", "dcterms:modified": "2012-05-17T13:55+09:00", "description": "Drupal\u0027s Form API fails to validate the redirect URL, which may lead to unintended information disclosure.\r\n\r\nDrupal is a content management system (CMS). Drupal\u0027s Form API fails to validate the redirect URL, which may lead to unintended information disclosure.\r\n\r\nKatsuhiko Nakanishi from NEC Nexsolutions, Ltd. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.", "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000045.html", "sec:cpe": { "#text": "cpe:/a:drupal:drupal_core", "@product": "Drupal core", "@vendor": "Drupal", "@version": "2.2" }, "sec:cvss": { "@score": "4.3", "@severity": "Medium", "@type": "Base", "@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "@version": "2.0" }, "sec:identifier": "JVNDB-2012-000045", "sec:references": [ { "#text": "https://jvn.jp/en/jp/JVN45898075/index.html", "@id": "JVN#45898075", "@source": "JVN" }, { "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1589", "@id": "CVE-2012-1589", "@source": "CVE" }, { "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1589", "@id": "CVE-2012-1589", "@source": "NVD" }, { "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html", "@id": "CWE-20", "@title": "Improper Input Validation(CWE-20)" } ], "title": "Drupal Form API fails to validate the redirect URL" }